Need to assign static ip instead of ip from dynamic lease pools

Question

We have a requirement where we need to statically assign ip addresses (Permanently) to users who login to SSL VPN Portal.
These will give us further control over assigned resources through ACLS without branching keeping the Access policy profile simple. &nbsp;
eg: User A should get IP address 10.10.10.2 User B should get 10.10.10.3 and so on for at least 200 users. &nbsp;
Please can anyone help us out with a config guide for the same. &nbsp;
WE have tried the following but no success
1) https://support.f5.com/kb/en-us/solutions/public/13000/300/sol13300
2) https://devcentral.f5.com/questions/how-to-lease-static-ip-on-apm&nbsp;

arnaud_lemaire · Answer

Hello Barry, bot solution should work for you use case. Try again a simple one by assigning statically a client ip variable in the VPE. you can then check when the client is connected if he does have the correct lease ip by going in the report session/session variable menu.&nbsp;
Having said that two paramaters may causse pain if you want to actually see the lease pool IP on the network:&nbsp;
in the network access List object : SNAT POOLon the Virtual Server : SNAT 
Both needs to be set at none, otherwise big-ip will snat traffic and you will see self IPs instead of you lease pool on your network. Also if you don't SNAT you have to make sure that you network is routing the list pool subnet to the floating self ip of your APM.&nbsp;

Forum Discussion

Need to assign static ip instead of ip from dynamic lease pools

1 Reply

Recent Discussions

About custome Response Blocking Page

Office Online Server with SharePoint 2016

health monitor source IP address

How to target only webview rendering with CSS?

ltm policy asm_auto_l7_policy

Related Content

APM variable assign examples

Mitigating OWASP API Security Risk: Mass Assignment using F5 XC Platform

Regex for dynamic URI

Creating, Importing and Assigning a CA Certificate Bundle

MAC address assignment in F5